RPM attempts to read CLI file arguments as a manifest if a header cannot be
read from the file.
Since manifests are parsed free field, rpm behavior can become quite complex,
particularly when ../../.. relative paths are parsed.
There's a slew of mostly unimportant issues (IMHO: manifests are a very minor
unused feature in RPM) that can/will be discovered by fuzzing.
Hence there needs to be a means to disable manifest reading from the rpm CLI
--
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/issues/437
_______________________________________________
Rpm-maint mailing list
Rpm-maint@lists.rpm.org
http://lists.rpm.org/mailman/listinfo/rpm-maint